Chris, Try looking into this: http://www.carbonwind.net/Firewalls/BlockingSkypewithPfsenseandSnort/BlockingSkypewithPfsenseandSnort.htm
It's for blocking Skype but can be for just about anything really. Cheers! On Fri, Nov 14, 2008 at 8:24 AM, Chris McQuistion <[EMAIL PROTECTED]>wrote: > Mark, do you know if pfSense has a module that can do P2P software > detection and blocking (not just shaping)? > I'm using Untangle right now because it has a good content filter, P2P > blocking, virus scanning, and some other features, but it lacks captive > portal functionality which it looks like pfSense has. > > Chris > > > On Fri, Nov 14, 2008 at 8:19 AM, Mark J. Bailey <[EMAIL PROTECTED]> wrote: > >> >> chris >> >> I have been a die-hard pfsense user/fan for over 2 years now. it is just >> one of those things that just works. not perfect. but VERY reliable. >> Its symertic NAT is somewhat less flexible with UDP-based things like VOIP >> (compared to iptables full cone NAT), but I have managed to work around >> it. the next release, 1.3, has some new features that I am looking >> forward to but will wait to judge when they arrive (such as traffic >> shaping across IPSEC tunnels). I used to use shorewall on linux. it was >> nice too but still nowhere near the user-friendliness of pfsense's GUI. I >> think one thing that may have driven pfsense's GUI early on is its origin >> with m0n0wall (embedded device only) in which the GUI is more or less the >> main (only?) way things are done. >> >> So, if you do come across others please post them here. >> >> -----Original Message----- >> From: [email protected] [mailto:[EMAIL PROTECTED] On >> Behalf Of Chris Faulkner >> Sent: Friday, November 14, 2008 8:12 AM >> To: NLUG >> Subject: [nlug] Re: What's the best drop in Firewall App out there? >> >> >> arno iptables is more of a script and while it is drop in, it's not >> very "noob" friendly. Don't mean to shoot you down on this one and >> while arno is a good firewall solution for a system that's already up >> and running, a firewall you could drop in and pretty much walk away >> from without have to resort to knowing much linux or even how a >> firewall works. Console based firewalls are best IMO, but I have a >> few clients that no nothing of Linux but can read a web front end and >> I'm just curious if there are any more out there like this. So far >> pfSense is the only one I can find out there that is "noob" friendly >> and I found it by mistake one day so i'm making sure that there is not >> a few more floating around like this. Are there any appliance-like >> firewall applications that have a web front end, good reporting and >> performance? >> >> On Nov 11, 6:32 pm, "Greg Donald" <[EMAIL PROTECTED]> wrote: >> > On Tue, Nov 11, 2008 at 1:19 PM, Chris Faulkner <[EMAIL PROTECTED]> >> wrote: >> > > Also, if >> > > there are any other dropin firewall apps that are open source and >> don't >> > > require a crapton of hardware requirements (a.k.a. Untangle), post >> them down >> > > i'd like to check them out. >> > >> > apt-get install arno-iptables-firewall >> > >> > Provides an easy to customize iptables firewall and NAT. Very >> > drop-in, very easy to customize. >> > >> > -- >> > Greg Donaldhttp://destiney.com/ >> >> >> >> > > > > -- Chris Faulkner 615-653-4400 (Skype: chris.faulkner615) Linux/Unix/Windows Network Engineer LinkedIn TeamNashville Group: 1100+ members: http://www.linkedin.com/groups?gid=76329 BBS Enthusiast group: http://groups.google.com/group/80sbbs --~--~---------~--~----~------------~-------~--~----~ You received this message because you are subscribed to the Google Groups "NLUG" group. To post to this group, send email to [email protected] To unsubscribe from this group, send email to [EMAIL PROTECTED] For more options, visit this group at http://groups.google.com/group/nlug-talk?hl=en -~----------~----~----~----~------~----~------~--~---
